Detection of vulnerabilities in a computer network

Assignee

• Palantir Technologies Inc. · US

Inventors

• Elliot Colquhoun · Auckland, NZ
• Abhishek Agarwal · Redmond, US
• Andrew Eggleton · Doha, QA
• Brandon Helms · Arnold, US
• Carl Ambroselli · Potsdam, DE
• Cem Zorlular · New York, US
• Daniel Kelly · Chicago, US
• Gautam Punukollu · New York, US
• Jeffrey Tsui · Palo Alto, US
• Morten Kromann · Copenhagen, DK
• Nikhil Seetharaman · Palo Alto, US
• Raj Krishnan · Mumbai, IN
• Samuel Jones · Chelmsford, US
• Tareq Alkhatib · Richmond, CA
• Dayang Shi · New York, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/75
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method, apparatus, and computer program are disclosed. The method may be performed by one or more processors and may comprise receiving first data representing an infrastructure of a computer network, the first data comprising an indication of hosts which form at least part of the computer network and one or more software resources on respective hosts. The method may also comprise receiving second data from a vulnerability scanning software, the second data comprising an indication of one or more vulnerabilities detected in the one or more software resources provided on at least some of the hosts of the computer network. Using a combination of the first data and the second data, output data may be generated representing a risk profile of the computer network infrastructure, the output data indicating one or more subsets of hosts, determined as being at risk of being affected by the detected vulnerabilities by virtue of the software resources they provide for output on a user interface.